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Your wildcard search against 10000 terms has yielded the results below. 
Your result set for the last L# is incomplete. 
The probable cause is use of unlimited truncation. Revise your search strategy to use limited truncation. 
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O 1. Document ID: US 6466780 Bl 

L12: Entry 1 of 13 File: USPT Oct 15, 2002 

US-PAT-NO: 6466780 

DOCUMENT- IDENTIFIER: US 6466780 Bl 

TITLE: Method and apparatus for securing digital communications 
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L12: Entry 2 of 13 File: USPT May 7, 2002 



US-PAT-NO: 6385728 

DOCUMENT -IDENTIFIER: US 6385728 Bl 

TITLE: SYSTEM, METHOD, AND PROGRAM FOR PROVIDING WILL-CALL CERTIFICATES FOR 
GUARANTEEING AUTHORIZATION FOR A PRINTER TO RETRIEVE A FILE DIRECTLY FROM A FILE 
SERVER UPON REQUEST FROM A CLIENT IN A NETWORK COMPUTER SYSTEM ENVIRONMENT 
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□ 3. Document ID: US 6373950 Bl 

L12: Entry 3 of 13 File: USPT Apr 16, 2002 

US-PAT-NO: 6373950 

DOCUMENT- IDENTIFIER: US 6373950 Bl 

TITLE: System, method and article of manufacture for transmitting messages within 
messages utilizing an extensible, flexible architecture 
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□ 4. Document ID: US 6338140 Bl 

L12: Entry 4 of 13 File: USPT Jan 8, 2002 

US-PAT-NO: 6338140 

DOCUMENT- IDENTIFIER: US 6338140 Bl 

TITLE: Method and system for validating subscriber identities in a communications 
network 




□ 5. Document ID: US 6314521 Bl 

L12: Entry 5 of 13 File: USPT 



Nov 6, 2001 



US-PAT-NO: 6314521 

DOCUMENT- IDENTIFIER: US 6314521 Bl 

TITLE: Secure configuration of a digital certificate for a printer or other network 
device 
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US-PAT-NO: 6253027 

DOCUMENT- IDENTIFIER: US 6253027 Bl 

TITLE: System, method and article of manufacture for exchanging software and 
configuration data over a multichannel, extensible, flexible architecture 
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□ 7. Document ID: US 6144848 A 

L12: Entry 7 of 13 File: USPT Nov 7, 2000 
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DOCUMENT- IDENTIFIER: US 6144848 A 

TITLE: Handheld remote computer control and methods for secured interactive 
real-time telecommunications 
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□ 8. Document ID: US 6065120 A 

L12: Entry 8 of 13 File: USPT 



May 16, 2000 



OS-PAT-NO: 6065120 

DOCUMENT- IDENTIFIER: US 6065120 A 

TITLE: Method and system for self -provisioning a rendezvous to ensure secure access 
to information in a daffibfiSft from multiple devices 
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□ 9. Document ID: US 5864667 A 

L12: Entry 9 of 13 File: USPT 



Jan 26, 1999 



US-PAT-NO: 5864667 

DOCUMENT- IDENTIFIER: US 5864667 A 
TITLE: Method for safe communications 




□ 10. Document ID: US 5809145 A 

L12: Entry 10 of 13 File: USPT 



Sep 15, 1998 



US-PAT-NO: 5809145 

DOCUMENT- IDENTIFIER: US 5809145 A 

TITLE: System for distributing digital information 
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Your wildcard search against 10000 terms has yielded the results below. 
Your result set for the last L# is incomplete. 
The probable cause is use of unlimited truncation. Revise your search strategy to use limited truncation. 
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□ 11. Document ID: US 5677953 A 

L12: Entry 11 of 13 File: USPT 



Oct 14, 1997 



US-PAT-NO: 5677953 

DOCUMENT- IDENTIFIER: US 5677953 A 



TITLE: System and method for access control for portable data storage media 
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□ 12. Document ID: US 5157717 A 

L12: Entry 12 of 13 File: USPT 



Oct 20, 1992 



US-PAT-NO: 5157717 

DOCUMENT- IDENTIFIER: US 5157717 A 

** See image for Certificate of Correction ** 

TITLE: Portable automated teller machine 
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O 13. Document ID: US 5050207 A 

L12: Entry 13 of 13 File: USPT 
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TITLE: Portable automated teller machine 
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L10: Entry 1 of 1 



File: USPT 



Oct 15, 2002 



US-PAT-NO: 6466780 

DOCUMENT- IDENTIFIER: US 6466780 Bl 

TITLE: Method and apparatus for securing digital communications 
DATE- ISSUED: October 15, 2 002 



INVENTOR- INFORMATION : 
NAME 

Geiselman; J. Milton 
Bobola; Robert E. 
Lerner; Daniel M. 



CITY STATE 

Missouri City TX 

Seabrook TX 

Missouri City TX 



ZIP CODE 



COUNTRY 



AS S IGNEE - INFORMAT ION : 
NAME 

Interlok Technologies, LLC 



CITY 



STATE ZIP CODE COUNTRY TYPE CODE 



Missouri City TX 
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APPL-NO: 08/ 922884 [PALM] 
DATE FILED: September 3, 1997 

INT-CL: [07] HQA M l/££ 

US-CL-ISSUED: 455/411; 455/412, 380/23, 340/825.34, 705/64, 705/75 
US -CL- CURRENT: ASS/ Ail; 455/412 . 1, J_&5l/£lA, 705 /75 
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702/64, 702/75 
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Chaplain, is your wire transafer system Secure?, Internial Auditor, v52, n3, p. 56 
(4), Jun. 1995.* 

Brandon, What you should know about wire-transfer liabilities, Financial Executive, 
v6, n6, p39(5), Nov. -Dec. 1990.* 

Ken Masica, Securing IP Packets with SKIP, Security Advisor Summer 1999, p. 36, 
38-42. 

ART-UNIT: 3625 

PRIMARY- EXAMINER : To; Doris H. 

ATTY- AGENT -FIRM: Streets & Steele Streets; Jeffrey L. 
ABSTRACT : 

The present invention provides a method and apparatus for identifying and minimizing 
the use of cloned communicating devices which communicate with a host device. The 
method requires that the communicating devices send a transaction specific code and 
an identification code, along with each communication wherein the transaction 
specific code changes between each communication. One communicating device, either 
the authentic device or a fraudulent device might communicate with the host 
successfully any number of times. However, when a second devices attempts 
communication whether that device is the authorized device or fraudulent device, the 
host device will receive a t- -ran gar hi on specific code which is inconsistent or out of 
sequence with that expected by the host. The host device will preferably disallow 
all further communications involving the particular identification code until the 
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authorized user can be contacted and the transact- i on specific code reset or even a 
III set of specific codes are provided. Alternatively, upon detection of 

thl KconsiSenTSanLcLLon specific code, the host computer may prompt the user 
5X information specific - to the authorized user that is not stored in- the 
communing dev?ce and would not be readily available to the clone device or the 
user of the clone device. 



36 Claims, 8 Drawing figures 
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L10: Entry 1 of 1 



File: USPT 



Oct 15, 2002 



DOCUMENT- IDENTIFIER: US 6466780 Bl 

TITLE: Method and apparatus for securing digital communications 



Abstract Text (1) : 

The present invention provides a method and apparatus for identifying and minimizing 
the use of cloned communicating devices which communicate with a host device. The 
method requires that the communicating devices send a transaction specific code and 
an identification code, along with each communication wherein the transaction 
specific code changes between each communication. One communicating device, either 
the authentic device or a fraudulent device might communicate with the host 
successfully any number of times. However, when a second devices attempts 
communication whether that device is the authorized device or fraudulent device, the 
host device will receive a transaction specific code which is inconsistent or out of 
sequence with that expected by the host. The host device will preferably disallow 
all further communications involving the particular identification code until the 
authorized user can be contacted and the transaction specific code reset or even a 
new set of ^ra^^.qar^■^nn specific codes are provided. Alternatively, upon detection of 
the inrnnRi.QtPnt- j-ranfiartinn specific code, the host computer may prompt the user 
for information specific to the authorized user that is not stored in the 
communicating device and would not be readily available to the clone device or the 
user of the clone device. 

Application Filing Date. (1) : 
1997Q9Q3 

RHftf Summary Text (3) : 

The present invention relates to the security of communications, and more 
particularly to a method and apparatus for combating the use of cloned, fraudulent 
or unauthorized communicating devices, such as eel "hilar telephones, credit cards and 
computer terminals. 

Brief Summary Text (5) : 

Communication signals are used widely in many different or interrelated fields, such 
as credit card aiithori zation systems, cellular telephone and radio communications, 
satellite transmissions,_telenhone calls, computer networks and modem connections, 
automated teller machine transmissions, direct broadcast television, garage door 
openers, automobile remote devices and the like. While each of these fields may have 
different communication protocols, performance objectives and technical constraints, 
each of the fields have at least some concern for the security of the communication. 
Specific security concerns may deal with the content of the communication itself 
(often protected by encryption methods) , the integrity of the communication (often 
protected by error -checking and ant i -virus software) , and authorized access to the 
communication (often protected by account codes and passwords) . 

R-rHfif Summary Text (6) : 

Unauthorized access to communications and communicating devices has become a problem 
in many of the fields mentioned. Computer networks have been broken into by 
determining authorized account codes and passwords, thereby gaining access to 
proprietary information or computing capabilities Credit card transactions may be 
charged by an unauthorized person by merely possessing a lost or stolen card. 
Cel lnlar- telephones may be duplicated or cloned to produce a large number of 
fraudulent telephones having the same account codes and personal identification 
codes as a lost or stolen authentic cellular telephone. Attempts to combat these 
unauthorized communications has taken many forms. 
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R-Hfif Summary T^xt (8) : 

For example, a serious problem in existing cellular telephone systems may be 
referred to as the "false mobile station" syndrome. It is presently possible to copy 
the entire memory contents of a mobile station and to use that information to 
manufacture clones which can demand and receive service from the network. Cellular 
phones may be cloned by reading the entire memory contents of the phone, including 
its identification codes, secret keys, internally stored personal identification 
codes, signatures, etc., and writing the same codes into any number of similar 
"clone" phones. The cloning procedure can become quite sophisticated and may include 
software modifications which replace physically stored information with 
electronically stored information so that a number of stored mobile station 
identities may be cyclically rotated within one fraudulent mobile station and used 
to imitate several authentic mobile stations. 

Rri pf Summary Text (9) : 

Similar breaches of communications have occurred in financial transactions involving 
credit cards. Typically, the information on a lost or stolen credit card can be 
electronically read and duplicated on any number of credit cards. The cards are then 
distributed and used until either the credit limit of the card is surpassed or the 
card is reported stolen or lost to the credit card company. Significant actual 
losses are experienced each year due to the use of such "cloned" credit cards. 

Rripf Snmmary Tfiyt (10) : 

Many communication systems, including rpl 1 nl ar t^l Rphone networks and credit card 
authentication n r aiithori nation systems, comprise a vast number of distributed 
communicating devices (i.e., mobile cellular phnn^a or credit cards and credit card 
readers) that transmit data to a central computer system in charge of determining 
whether or not to allow the communication to go through. The central computer system 
may execute an authorization algorithm to determine if the credit card has a valid 
account or identification number, if there is an available balance of credit and, 
perhaps, if a valid personal identification number has been given or entered. 
However, sophisticated thieves have been able to duplicate the credit card with 
valid identification numbers and determine even the personal identification number. 

TVHpf Summary Text (11) : 

Similarly, computer network communications or computer- to -computer communications 
may include files that are locked, password protected, zipped and/ or encrypted for 
various reasons, including the security of the content of the communication. 
Password protection provides a limited degree of security, primarily protecting a 
communication from being accessed by persons who casually encounter the file, but 
this security can still be violated. Encryption is perhaps the most secure means for 
preventing outsiders from obtaining the content of the communication and, therefore, 
is in widespread use by banks and other financial institutions throughout the world 
for many or all of their electronic transactions. 

Rr-ipf Snmmary Tf>yr_ (15) : 

The present invention provides a method of authenticating a communication, 
comprising (a) providing a first communicating device with a first sequence of 
rrangarr i on specific codes; (b) providing a second communicating device with a 
second sequence of transaction specific codes, wherein the first and second 
sequences are identical; (c) setting pointers in the first and second sequences at 
the same transaction specific code; (d) transmitting a communication from the first 
communicating device to the second communicating device along with a transaction 
specific code from the first sequence; (e) refusing communications having a 
rrangarrion specific code that is different from the transaction specific code 
expected by the second communi eating device; and (f) incrementing the pointers in 
both the first and second communicating devices. The first and second sequences of 
t- ran garr-i nn codes may be stored in a database or calculated according to various 
algorithms . 

Rr-ipf Summary Text (16) : 

The first and second communicating devices may take on various forms and functions. 
For example, the first communicating device may be a credit card and the second 
communicating device a central clearinghouse; the first communicating device may be 
a r<=Q lular telephone and the second communicating device a cel. lular network; the 
first communicating device may be a garage door remote and the second communicating 
device a garage door opener; the first communicating device may be an automobile 
remote unlock device and the second communicating device an automobile remote unlock 
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device receiver; the first communicating device may be a computer and the second 
communicating device another computer; and the first communicating device may be a 
direct broadcast television system and the second communicating device a television 
receiver. It should also be recognized that the communication may proceed through 
transmissions selected from electrical, radio and optical. 

Rr-ifif Su mmary Text (17) : 

The invention also provides a method of authenticating a communication, comprising: 
(a) providing a first communicating device with a first identification code and a 
first sequence of txanaactJ on specific codes; (b) providing a host communicating 
device with the first identification code and the first sequence of transaction 
specific codes; (c) setting pointers in the first sequence of transaction specific 
codes of both the first communicating device and the host device at the same 
fransar.hion specific code; (d) transmitting a communication from the first 
communicating device to the host communicating device along with the first 
identification code and the transaction specific code associated with the pointer in 
the first sequence of transaction specific codes; (e) disallowing communications 
transmitted with the first identification code that have a transaction specific code 
that is different from the transaction specific code associated with the pointer in 
the first sequence of rran.c-arr-inn specific codes; and (f) incrementing the pointers 
in the first communicating device and the host communicating device. 

Rrief Summary TfiYt (18) : 

The invention further provides a method of authenticating a communication, 
comprising: (a) providing each of a plurality of communicating devices with a device 
identification code and an associated sequence of transaction specific codes; (b) 
providing a host communicating device with an identical copy of each of the device 
identification codes and the associated sequences of transaction specific codes; (c) 
setting pointers in the communicating device and the host device at the same 
i-ransarfinn specific code in the sequence of transaction specific codes associated 
with each identification code; (d) transmitting a communication from one of the 
communicating devices to the host communicating device along with the device 
identification code and the r ran taction specific code associated with the pointer in 
the sequence of tran.gari-inn specific codes; (e) disallowing communications 
transmitted with the device identification code that have a transaction specific 
code that is different from the rrangarr-i on specific code associated with the 
pointer in the sequence of r rangart-i on specific codes; and (f) incrementing the 
pointers in the communicating device and the host communicating device. 

RriPf Summary Tp.xt (19) : 

The invention also provides a method of detecting the existence of two or more 
communicating devices having the same identification code comprising the steps of: 
(a) transmitting an identification code and a transact i on specific code from a first 
communicating device to a host device; and (b) comparing the transaction specific 
code received by the host device with a next expected transaction specific code for 
a communicating device having the particular identification code. 

Rripf Su mmary Text (20) : 

Further, the invention provides a method of communicating between a communicating 
device and a host device, comprising the step of transmitting an identification code 
and a t-ranflart-inn specific code to the host device wherein the identification code 
is unique to the communicating device and the transaction specific codes are 
predetermined and known by the communicating device and the host device for the 
purpose of allowing the host device to detect the usage of a fraudulent 
communicating device having the same identification code. The method may also 
comprise changing the rrangart-i on specific code for subsequent attempted 
communications. The method may further comprise disallowing communications having an 
-improper transaction specific code. 

Rrief Summary Tfiyt (21) : 

The invention additionally provides a method of disallowing communications initiated 
by fraudulent communicating devices comprising (a) receiving an identification code 
and a i-raTisart.imi specific code from a communicating device; (b) searching a list of 
i-ransarfinn specific codes in the host device; and (c) having a predetermined 
sequence of tj^nsactJLQn specific codes for the next expected transaction specific 
code from a device having the received identification code. 

Rripf Summary Text (22) : 

Finally, the invention provides a method of re synchronizing the next expected 
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transaction specific code between communicating devices by matching a pattern of 
transaction specific codes in the communicating device with a pattern of tjanaac±jjai] 
specific codes in the host device. 

Detailed Description Teyt (2) : 

The present invention provides a method and apparatus for identifying and approving 
authentic communications. Such method and apparatus are important for preventing 
unauthorized communications through various communication media, including 
electronic, audible, visual or the like. Perhaps the most widely used media for 
communications in business and personal applications include electronic and radio 
frequency communications such as those involving computer to computer transfers, 
credit card anf.hnri zahinn and approval, cellular telephone calls and data 
transmissions, satellite broadcasts, automated teller machine transactions, and 
other electronic communications. For various reasons, it is frequently desirable or 
necessary for access to these communications to be restricted to authorized persons, 
authorized equipment, authorized locations, and the like. While the set of criteria 
necessary to authenticate a transmission or communication may be short and simple or 
long and complicated, the present invention proposes a simple, yet effective, method 
for preventing unauthorized communications. More particularly, the present invention 
prevents the successful use of multiple cloned or otherwise fraudulent devices, and 
limits the use of even a single cloned or otherwise fraudulent device to the time 
interval between the "cloning" event and the next authentic communication. Such time 
interval may be as long as several days (for example an infrequently used credit 
card) or as short as fractions of a second (for example in electronic financial 
hratifiart-.inns between institutions) . 

Detailed Description Text (3) : 

In one aspect of the invention, a method is provided for preventing the cloning and 
fraudulent use of various authentic communicating devices. Attempts to increase the 
complexity of the communicating device or the difficulty of successfully duplicating 
the device have met with limited success, because once the device has been 
successfully cloned, unauthorized communications may be accomplished. The methods of 
the present invention do not depend upon the complexity of the physical 
communicating device or the magnitude of possible security codes or keys, but 
rather, the present invention provides for transmitting a transaction specific code 
along with identification codes and the communication itself in accordance with a 
predetermined set of transaction codes known to a central authorizing device or 
host. These codes may take various forms including, but not limited to, numeric, 
alphabetic,, alpha numeric and the like and may be transmitted through various media 
including, but not limited to, digital or analog electronic signals, radio waves, 
light waves, chemical or other optical means, other wave forms, and the like. The 
transacts on specific code may be as simple as a sequential set of algorithmically 
generated numbers, such as 1 through 100, or some random set of codes predetermined 
and stored in both the communicating device and the host communicating device. 

Detailed Description Text (4) : 

The invention operates on the principal that when an authorized communicating device 
transmits a series of communications, with each communication accompanied by a 
hransarfinn specific code, the host or receiving device, such as a computer, will 
expect to receive the transaction specific codes in a particular, predetermined 
sequence. So long as subsequent communications contain a transaction specific code 
consistent with the existence of only one authorized communicating device having a 
given identification code, then the communication may be allowed or authorized. In 
the event that communications are initiated containing transaction specific codes 
which indicate the presence of duplicate communicating devices, then the 
communications will be disallowed. The methods just described do not address or 
prevent the physical cloning of the communicating device, but rather prevent the 
successful use of cloned devices over a period of time or the successful access to a 
communication over a period of time. 

Detai 1eH Dpsrri pt i on Text (5) : 

In another aspect of the invention, subsequent communications may be re-initiated by 
resetting the pointer at a different point in the sequence of predetermined codes in 
the authorized communicating device. In this case, the host device must also be 
informed of the reset point in order maintain synchronization. Alternatively, the 
communicating device and host device may be provided with a new set of transactions 
specific codes. The provision of new codes may be accomplished in any manner, manual 
or automatic, but automatic or periodic updating of codes may require modification 
of existing communicating devices which do not have sufficient receiving and storing 
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capabilities . 



Dfitai lf>d Description Text (6) : 

Typical cloning patterns, such as those experienced in the credit card and eel lular 
telephone markets, involve the loss or theft of a single authorized communicating 
device, i.e., the physical credit card or cellular telephone, which is then 
duplicated to provide a large number of fraudulent devices which operate identical 
to the aiifchorJ communicating device. In accordance with the prior art, the 
successfully cloned, yet fraudulent, devices were allowed to communicate 
successfully leading to loses of millions or billions of dollars. As indicated 
above, the methods of the present invention do not rely upon device designs which 
are presently difficult to copy or clone, but provides a method by which the use of 
two or more devices, such as the authorized devicedand one fraudulent device or 
multiple fraudulent devices, is identified by the host device upon receiving a 
t-ranfiartion specific code which is inconsistent with the predetermined set of codes. 



Detailed npsrription Text (7) : 

In one aspect of the invention, the degree of inconsistency in the transaction 
specific codes can be modified or tailored to a specific application. For example, a 
tran saot ion specific code may be sufficient to allow a communication to be 
authorized so long as it falls within a particular range of transaction specific 
codes expected by the host. More particularly, in the situation where the 

specific codes are a sequence of numbers from 1 through 100 listed in 
numerical order, a sequence of communications would be expected to include 
hransart-inn specific codes that fall in a sequence, such as 1, 2, 3, 4, 5, etc. 
However, for specific applications such as credit card use, it may be acceptable to 
allow or authorize communications containing transaction specific codes that are 
within a range of codes next expected by the host. Therefore, if the host was 
expecting to received transaction specific codes of 1, 2, 3, 4, 5, 6, 7, 8, etc. 
over a series of communications, then a series of communications containing 
transantinn specific codes ofl, 2, 4, 5, 7, 8 would be allowed if the host device 
were programmed with a tolerance of two codes. It is also anticipated that the host 
computer may take additional action if the transaction code tolerance is required 
too frequently. 

Detailed Desoripti on Text (8) : 

It should be recognized that the set of codes to be transmitted by the authorized 
communicating device and stored in a database within the host device may comprise a 
mere list or database of transaction specific codes established in a given order. 
While the fields of the database are maintained in a certain sequence, the 
tranflari-inn specific codes within those fields may vary in any manner. Therefore, 
the database programmed into the communicating device and the host device may have a 
database segment containing the numerical transaction specific codes of 54, 86, 32, 
64, 35, and 97. To an outside observer or someone intercepting these codes, the code 
would appear to be random or at least undeterminable. However, the host device knows 
what the next expected transartinn specific code is to be, i.e., if the previous 
transaction specific code was 86, then the next expected transaction specific code 
is32, but transaction specific code of 64 would be accepted if the tolerance were 
set at two fields. This ability allows the host computer to determine whether or not 
the communication is authentic. In this context, the concept of tolerance no longer 
implies that i-he transaction specific code has a numerical value within a certain 
range, but rather that the transaction specific code may be found within a range of 
fields within the database forwardly adjacent to a field containing the next 
expected code. The ability of the database to contain any number of transaction 
specific codes of any length or type of signal vastly increases the difficulty of 
predicting the next transaction specific code. However, even in the simplest of 
embodiments, where the transaction specific codes comprise a sequence of numbers in 
numerical order, the invention still prevents widespread cloning in the manner 
described above. Furthermore, a simple embodiment of the present invention allows 
the host computer to dispense with an actual database but rather comprise a single 
data register or memory location for storing either the last transaction specific 
code, the next expected transact! on specific code, or some equivalent means of 
tracking used or soon to be used codes. 

Detailed Description Text (9) : 

While the foregoing discussion has dealt primarily with detecting unauthorized 
communicating devices, the present invention may also include the ability to detect 
unauthorized users. In many applications, including credit card authorization and 
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approval and rplhilar fplpphnnp communications, it is frequently desirable to verify- 
that the communication is being initiated by an authori zed user. The inclusion of a 
user authorization system is beneficial for reducing the use of the authentic 
communicating device when it has been stolen or lost. Losses due to the use of lost 
or stolen communicating devices is also very significant, but is inherently limited 
to the capacity of via the authorized communicating device itself, i.e., one 
communication at a time, a credit limit, etc. Furthermore, the use of lost or stolen 
communicating devices by unauthorized users may be restricted by the use of user 
specific codes, such as a personal identification number (PIN) , finger print, 
password, voice command and the like. 

Detailed Desrri pi- ion Text (10) : 

In another aspect of the invention, the host device and/or the communicating device 
may be programmed to verify the identity and authenticity of the device alone or in 
combination with the user. In one example, the host computer may first verify that 
the communication is being initiated from an authorized communicating device, then 
prompt the user to enter a personal identification code (PIN) indicating that the 
user is also authorized. Only upon satisfaction of these two criteria is the 
communication be allowed to proceed. It should be recognized that the host device 
could be programmed to verify these two codes, or other additional codes and 
authorizations, in any order. In another example, the communicating device itself 
may require the successful input of a personal identification code prior to enabling 
or energizing the transaction specific code, any portion of the device 
identification code or even some portion of the communication itself. 

Dprailed npsrri pt-.ion Text (11) : 

A still further aspect of the invention provides for automatic re -synchronization of 
the transart-inn specific codes following one or more unauthorized communications. 
Re-synchronization methods according to the present invention may be achieved by 
programming the host device to reset the pointer in a database of transaction 
specific codes for a particular identification code upon receiving a series of 
attempted communications having a series of transaction specific codes that match a 
portion of the database. For example, after receiving an attempted communication 
having a t-ransart-.ion specific code that is not the next expected transaction 
specific code or within the range of tolerance, no further communications using the 
same identification code can proceed until the transaction specific codes of the 
communicating device and the host are re -synchronized. If the host device is 
programmed to allow re -synchronization after receiving three transaction specific 
codes (i.e., 12, 13, 14) that match a portion of the host database (i.e., 10, 11, 
12, 13, 14, 15, 16, etc.) for the given identification code, then the pointer in the 
host database is reset for the next transaction specific code (i.e., 15) in the 
database. Subsequent communications may proceed in accordance with the 
aforementioned methods. It may be beneficial to a separate range of tolerance for 
re -synchronization in order to prevent re -synchronization at a dramatically 
different point in the sequence of transaction specific codes. 

Dpl-a-n^d npsrripMnn Tpvh (12) : 

Another aspect of the invention provides for periodically incrementing, or otherwise 
moving, the pointers in the transact: ion specific codes in both the communicating 
device and the host device. The periodic movement of the pointer is advantageous 
because it effectively shortens the time period or "window of opportunity" in which 
a cloned device having a full and correct set of transaction specific codes may 
operate. For example, if an authentic communicating device is infrequently used, a 
cloned device may initiate successful communications until such time as the 
authentic communicating device is used again. However, if the authentic 
communicating device and the host device are designed or programmed for periodically 
moving their database pointers, in accordance with a predetermined algorithm, then 
the cloned device may initiate successful communications only until the next 
movement of the database pointers. Specifically, the database pointers may be 
incremented by one or more fields after specific time intervals, i.e., ten minutes, 
an hour, a day, etc. 

DRt-.ailRd Dpscription Text (13) : 

FIG. 1 is a schematic diagram of an identification and authorization system 10 in 
accordance with the present invention. A communicating device 12 generates and 
transmits a communication 16 to a host device 14, wherein the communication 16 
comprises an identification code 18, a transartinn specific code 20 and the content 
22 of the communication itself. Note that both the communicating device 12 and the 
host device 14 contain similar databases, lists or tables 24, 26, respectively, 
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having a plurality of fields 28, 30 containing the same transaction specific codes 
in the same sequence. Prior to the first communication, a pointer in both databases 
is directed to the same field containing the same transaction specific code. 

Detailed Degr-ript-ion Text (14) : 

It should be recognized that the host device 14, or perhaps even communicating 
devices which are capable of transmitting or receiving communications from or to a 
plurality of other devices, may have a plurality of n lists of transact. i on specific 
codes, where n is the number of authorized identification codes, such as the 
identification code 32 having the list 26. Each of the n lists in the host device 14 
will have a pointer, such as pointer 34, which indicates the next expected field in 
the sequence of m fields in the list or database 26 which, in turn, contains the 
next expected i- ran Bart: -i on specific code (i.e., TS Code=ABC123) . Similarly, the 
database 24 of the communicating device 12 has a pointer 36 which indicates the next 
franffarhinn specific code (i.e., ABC123) to be transmitted along with the 
identification code 38. Upon receiving the communication 16, the host device 14 
determines the identification code 18 and looks for the identification code among 
the n authorized identification codes. Then the host device 14 compares the 
t-ransari-inn specific code 20 received from the communicating device 12 with the 
t-rangart-ion specific code 30 indicated by the pointer 34. 

Hpt-ailpH Description Text (15) : 

During subsequent communications, the transmission from the communicating device 12 
will contain subsequent Lranaac^iou specific codes 28 from the database 24. Errant 
or failed communications may lead to the pointer 36 of the communicating device 12 
incrementing to the next field in the database 24 without the communication ever 
being received by the host device 14 and, consequently, without the database 26 of 
the host device 14 ever being incremented. This and other similar situations 
represent a benefit of using the tolerance feature described above. If the host 
device 14 receives a transartion specific code 20 falling in the database within a 
reasonable range of fields, typically only fields in the forward direction, then the 
communication is allowed to proceed. For example, if the tolerance is set to three 
fields 40 and the pointer 34 is set at the field containing "ABC123", then the host 
device 14 may authorize communications having an identification code 32 and a 
transaction specific code of "ABD123", "MOON" or "FRED", but not "DOG" (since it is 
not in a forwardly directed field) or "64 "(since it is outside the tolerance range 
of 3) . In this example, if the communication was authorized on the basis of a 
fransartion specific code of "FRED", then the database pointer 34 in the host device 
14 would preferably be reset to a next expected transaction specific code of "64" 
which matches that of the communicating device 12. 

Pet a -i 1 ed De^r r i pi- 1 on Tex t (16) : 

It should be recognized that communications having acceptable identification codes 
and txansacjLioja specific codes may be further subject to verification of other 
conditions, such as a personal identification number (PIN) and the like. Examples of 
other conditions or criteria useful for determining whether or not to authorize a 
particular communication include the location from which the communication is 
initiated, the frequency with which communications occur, the type of communication 
being attempted, the content of the communication itself, and discrepancies between 
time and space which indicate the unlikely use of a single device suggesting 
cloning. Other useful criteria will become apparent in specific applications. 

Detailed Dfiarri pt ion Text (17) : 

As shown in FIG. 1, the communicating device 12 preferably includes a member 42 for 
providing the content 22 of the communication 16 to a transmitter 44. The actual 
transmission may be initiated in any number of manners, but specifically may be 
initiated with a "send" button 46, such as that on a ce.1 lular telephone or by the 
act of swiping a credit card. The host device 14 preferably includes a receiver 48 
and a central processing unit (CPU) 50. The CPU 50 is provided with the 
communication 16 from the receiver 48 and executes a series of steps in order to 
authenticate the communication. 

Detailed Desr-Hpt-ion Text (18) : 

FIG. 2 is a conceptual diagram which is useful for arriving at a full understanding 
of the one aspect of the present invention. The diagram of FIG. 2 presents a set of 
keys on a ring 52 and a set of locks 54 in a door 56 which operate analogous to the 
present invention. The key ring 52 (communicating device) includes a fob 58 
(identification code) and a plurality of keys 60 (transaction specific codes) . The 
door 56 (host device) includes a plurality of locks 62 (expected transaction 
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specific codes) for each fob (identification code) which can only be unlocked by 
using a specific key (transmitted transaction specific code). The locks 62 
( t--ran.c;artinn specific codes) in the door (host) are rotated (incremented) in the 
-direction of arrow 64 by a mechanism each time the door is unlocked. Similarly, the 
keys ( t-r-ansarHnn specific codes) on the key ring 52 are rotated (incremented) each 
time a key is used. 

Dp^ilfid Dfiflcription Text (19) : 

The door and key ring are initially used as shown, with the key a and lock A ready 
for the first unlocking of the door (communication) . When key a unlocks the door 
with lock A, then the door is open for a transaction to pass therethrough. Note that 
fhp i-ransarhinn does not need to have any actual connection with the key nor the 
lock. Anything may move through the doorway once the door is unlocked. 

r>F>1-a-Mpr i nPfir-Hpt-ion Text (20) : 

When the t-ransart-.i on is completed, the door is closed, the next lock in the rotation 
is moved into place and the keys are rotated around the ring in preparation for the 
next unlocking. In this case, the key b is positioned as the next key to be used and 
the lock B is positioned as the next operating lock in the door. 

n^t-a-ilpH Dpfirript-ion Text (21) : 

To enable the npyt- ^ranRa^■^-^r>n■ key b is used with lock B. The door is unlocked and 
open for the transaction as before. When this second tran.sacti on is completed, the 
door is closed and both the keys are rotated to key c and the locks are rotated to 
lock C. Note that this i-T-angantion system operates with synchronous rotation of the 
keys and locks. Only one key on the ring will unlock the door for any specific 
t-T-angari--inn. thereby providing much greater security than a more complex key. 

n^i-a-Mfiri Dfificrript-ion Text (25) : 

This mechanical analogy illustrates four features of sequential synchronized keys: 
(1) it is difficult to guess the next key; (2) the keys are not specifically related 
to the content of the transaction ; (3) there are various ways of guarding the lock 
from tampering; and (4) there are various ways of guarding the keys from 
duplication. 

nphailpH nPRrnpf irm Text (27) : 

In a further aspect of the invention, the successful entry of a personal 
identification number or code may also result in the generation of a visual 
indicator on a display 76 that signifies successful entry. Such a visual indicator 
would be useful in applications where the initiation of the communication is 
attended by a representative interested in the proper authorization of the 
communication, for example, a sales clerk in a retail outlet which either does not 
have electronic authorization equipment or such equipment is presently inoperable. A 
visual indicator may also be useful in situations where electronic verification 
equipment is available, but the sales representative is available to monitor the 
number of unsuccessful attempts at entering the personal identification number. In 
any of these circumstances, the sales clerk could require the visual indicator prior 
to proceeding with the transaction or communication. 

npt-ail pr i npsrnpt-inn Text (28) : 

Still referring to FIG. 2, the card 70 of the present invention makes use of 
conventional magnetic media supplemented with at least one electronically generated 
bit of information. This electronically generated bit may occur anywhere in the 
magnetic strip 72, including the region 78 containing a cyclic redundancy check or 
other verification code such as a check bit system, the region 80 containing an 
identification number, the region 82 containing the transaction specific code, or 
any other region. Further, the electronically generated bit may comprise its own 
region 84, perhaps indicating to the host through a card reader that the user is 
authorized, i.e., has successfully entered the personal identification number. 

Dpl-a-Mgri nPfirri pfinn T^xt (29) : 

Operation of the card 70 is facilitated by an energy source 86, such as a lithium 
battery or a solar cell. The energy source 86 must provide sufficient power for any 
device on the card, such as the display 76, an electronically generated bit (shown 
here as located in the region 82) , the keypad 74 and a CPU 88. The CPU 88 may be 
entirely embedded within the card 70 or located as desired for protection of the CPU 
or ease of manufacture. The CPU 88 is responsible for verifying correct PIN entry 
from the keypad 74, providing a signal to display 76, controlling the electronically 
generated bit(s) (shown here in region 82), and other various functions that are 
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necessary or desirable to the function of the card. Further, the card 70 may 
comprise a multifunction device such as a calculator, etc. 

Ttetailgri npgnr-ip1--inn Tfixt (32) : 

The present invention encompasses the use of any number of electronically generated 
bits or conductive wires 90. However, in order to merely energize the card and 
complete a coherent transmission, only a single wire is necessary. However, in other 
embodiments, it is anticipated that multiple wires will be desirable. For example, 
j-r-angarMnn specific codes may be provided by the internal CPU or other similar 
logic circuit and provided to the card reader or host device through a series of 
electronically generated bits positioned adjacent the active strip area or region 
80. 

n^hailpd n^gr-Hpt-ion Text (35) : 

FIG. 6 is a logic diagram of a program 100 for operating a communicating device. 
While the communicating device may operate in various manners without departing from 
the present invention, the program 100 includes verifying a PIN, incrementing the 
device pointer to the next tranfiarUnn code, then transmitting the identification 
number, the transaction code and other optional information. Specifically, the PIN 
verification procedure may allow multiple attempts at entering the correct PIN, but 
deactivates the card if the correct PIN is not entered within x tries. 

Dfihailpd Dfiscr ipUnn T^xt (36) : 

FIG. 7 is a logic diagram of a program 110 for operating a host device, such as a 
central or host computer having electronic communication with a plurality of 
communicating devices. This type of communication is typically discontinuous, 
meaning that communication sessions are of a finite duration and are separated by at 
least some pause or period of non- communication. As previously indicated, the host 
device will comprise a database containing a sequence of fields storing transaction 
specific codes. Each authorized communicating device is provided with a database or 
list of this same type contained in its computer memory, perhaps having a unique set 
of codes for each device. The same or different database may also contain 
information about the user, identification codes, device identification codes, and 
other verification information such as mother's maiden name and other information 
personal to the user. Such database may also contain historical information about 
the use of the authorized device or the preferences of the authorized user. All of 
this information may potentially be used by the computer to determine whether or not 
a communication is to be allowed. 

rtet-.a-ilpri npflrript-.-ion Text (38) : 

If the identification number of the device is valid, then the host will locate its 
database of information and will begin to verify various information. This 
verification may proceed in any logical order, but is presented here as proceeding 
to determine whether the tx^naactions specific code received from the communicating 
device is the same as the next expected t-ransarhion specific code in the host 
database. Without the programming or entry of a tolerance factor in the computer 
program, i-hf> frangari-inn specific code transmitted and the next expected transaction 
specific code must be identical to allow the communication to proceed. However, it 
is believed to be beneficial in many applications to provide for some degree of 
tolerance. The term "tolerance" in the context of transaction specific codes 
preferably means that the transaction specific code received from the communicating 
device is identical to a t-ransart-.ion specific code stored in the host database 
within a range of fields sequentially subsequent to a previously received 
franfiar^nn specific code, i.e., a transaction specific code from a prior 
communication that was successful or authorized. Restated for the purposes of 
clarity, the host database pointer can be made forwardly tolerant by any number of 
fields. The extent of the forward tolerance will be specific to various applications 
depending upon a host of factors including the reliability of the data or 
communication, i.e., the nature and frequency of interruptions that are likely to 
occur even by authorized devices. In this manner the tolerance factor becomes a 
f -i 1 t-,pr for distinguishing authorized communications from those that are not. 

npfa-ilpH nfiflr.Hption Text (39) : 

If the t-.T-*rmar-;hirm specific code received is accepted, the pointer in the host 
database is reset at the i-ranMrt-.-mTi specific code received. The program may then 
look to other criteria in the transmission before authorizing the communication. As 
previously indicated these other criteria may include the specific location from 
which the communication is initiated, the frequency with which communications have 
been initiated, the nature or content of the communication itself, or other criteria 
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Detailed D^scri ption Text (40) : 

Depending upon the complexity of the communication or the degree of- security 
desired, the communicating device may operate in a manner such that its database is 
self -incrementing upon successful entry of the personal identification code or upon 
successful communication with the host device. Alternatively, the database in the 
communicating device may be incremented only upon successful communication with the 
host device and/or only at the command of the host device. In the later situation, 
the host computer may send a new field location, or pointer, in the database rather 
than simply the next incremental location. Furthermore, in some applications where 
the communicating device has sufficient receiving and storing capabilities, the host 
computer may simply hand the communicating device its next transaction specific code 
necessary for communicating. Subsequent communications would then contain the new 
i-r-angart-.-i on specific code or password and any unauthorized communications would 
contain old or previously used codes. Therefore, while the role of the host computer 
is to verify or authenticate the communication, either the communicating device 
itself or the host computer may take control over the selection of the next 
transartinn specific code , at least with a predetermined set of codes. In various 
embodiments, this control may be granted solely to the communicating device, solely 
to the host computer, or some combination thereof. An example of combined control 
over the transaction specific code sequence would be a communicating device 
programmed to increment after each communication, but subject to the host computers 
periodic command to relocate the pointer in its database. 

Derail f>H npsrr-r -ipr-inn Tfoer. (41) : 

It should be recognized that one of the distinct advantages of the present invention 
is its adaptability to existing communication systems without significant 
modification of the communicating device or its peripherals. For example, in the 
application of cellular telephone communications, the modern cellular telephone is 
already equipped with a CPU having at least a minimum counting capability. A simple 
programming change in the r^l inlar telephone would allow the counter's equivalent of 
a transaction specific code to be uploaded and transmitted along with the cellular 
telephone identification number and/or user identification number. Programing of the 
host device would proceed in accordance with the description of FIG. 7 

Derail f>ri ngsrripr.-ion Text (42) : 

Further, the program 110 of FIG. 7 may optionally include a subroutine 120 for 
automatically re synchronizing the pointer in the host database to correspond with 
the pointer in the database of the communicating device. The pointer is 
re synchronized by receiving and storing a sequence of r transaction specific codes 
from a sequence of r attempted communications. If the sequence of transaction 
specific codes matches any sequence of expected transaction specific codes in the 
host database, then the host pointer is reset to the transaction specific code 
following the last received transaction specific code. 

Detailed DP.grHptinn Tpoct (43) : 

When the present invention is applied to credit card use, the credit card itself 
must be modified to include a CPU, counter circuit or other logic circuit which can 
maintain, store, and update the transaction specific codes and a means for 
transmitting t-h«=> tranflartinn specific code to the credit card reader. The preferred 
method of achieving this is shown in FIGS. 3-5. While this is a significant 
modification of a credit card, the issuance of new cards made in accordance with 
FIGS. 3-5 is estimated to cost less than about $2.00 per card and is deemed by the 
inventors to be a reasonable expense in light of the potential billion dollar 
savings in preventing a significant portion of credit card fraud. Modifications 
required of the host device are mere program changes which are believed to be 
relatively minor. Alternatively, various aspects of the present invention may be 
realized without modifying the actual credit card or other communicating devices by 
providing a separate, supplementary device, such as a hand held electronic device 
having a keypad, CPU, energy source and display, to be used in conjunction with the 
credit card. Such supplementary device would be used in an identical fashion as that 
described with reference to FIGS. 3-5, except that PIN input and transaction code 
generation and display are not performed within the card but in the supplementary 
device. The supplementary device may provide various modes of display or 
communication of the transaction specific code to the host device, including a 
visual display that is manually entered into the point-of-sale computer or card 
reader, an electronic signal, or other communication means known in the art. 
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Detailed Description Text (44) : 

In one alternative embodiment, upon detection of an inconsistent or out of sequence 
transaction specific code, the host computer does not need to immediately disallow 
the attempted communication' but rather may prompt the communicating device for 
additional information which is known only to the authorized user. In this manner, 
inconvenience to authorized users may be minimized while achieving the objective of 
preventing use of cloned devices. The prompt for user specific information may 
include any information that the authorized user has previously made available to 
the host device or an individual entity operating the host device. For example, 
discussions with financial institutions or credit card organizations about an 
individuals credit may require the requestor to successfully give the maiden name of 
the user's mother. Furthermore, it should be recognized that this user specific 
information does not need to be the same type of information for each user. 

Dptailpri Description TftYh (45) : 

While most of the foregoing discussion about the present invention has focused on 
the use of databases, lists and tables for storing transaction specific codes, it 
may be preferred in some applications having limited memory to provide an algorithm 
for calculating the next transaction specific code. In these applications, the 
pointer refers to the number of steps into the algorithm or the value input into the 
algorithm and the transaction specific code is the calculated output of the 
algorithm. The host device is provided with the same algorithm and compares the 
transact i on specific code received from the communicating device with the next 
expected transaction specific code. The concept of "tolerance" described earlier may 
be incorporated either by setting an acceptable range of values for the transaction 
specific code (output of the algorithm) or the pointer itself (input to the 
algorithm) , the later being the equivalent of back calculating the pointer and 
verifying that it is within the range of tolerance. 

Current US Cross Reference Classification (2) : 
7Q5/64 

CLAIMS : 

1. A method of preventing the use of a fraudulent device, comprising: (a) providing 
a first communicating device with a first sequence of transaction specific codes; 
(b) providing a second communicating device with a second sequence of transact i on 
specific codes, wherein the first and second sequences are identical; (c) setting 
pointers in the first and second sequences at the same transaction specific code; 
(d) transmitting a communication from the first communicating device to the second 
communicating device along with the transaction specific code indicated by the 
pointer in the first sequence, wherein the communication and transaction specific 
code do not comprise account numbers; (e) refusing communications having a 
transaction specific code that is different from the transaction specific code 
indicated by the pointer in the second communicating device; and (f) incrementing 
the pointers in a predetermined sequence within both the first and second sequences 
to the next transaction specific code in the absence of an interrogation 
transmission from the second communicating device. 

2. The method of claim 1, wherein the first sequence of transact i on codes is stored 
in a database. 

3. The method of claim 1, wherein the first sequence of transaction codes is 
calculated. 

4. The method of claim 3, wherein the second sequence of transact i on specific codes 
is calculated. 

6. The method of claim 1, wherein the first communicating device is a cellular 
telephone and the second communicating device is a eel inl ar network. 

15. A method of authenticating a communication comprising: (a) providing a first 
communicating device with a first identification code and a first sequence of 
transaction specific codes ; (b) providing a host communicating device with the first 
identification code and the first sequence of transaction specific codes; (c) 
setting pointers in the first sequence of transaction specific codes of both the 
first communicating device and the host device at the same transaction specific 
code; (d) transmitting a communication from the first communicating device to the 
host communicating device along with the first identification code and the 
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transation specific code associated with the pointer in the first sequence of 
transaction specific codes, wherein the first identification code and the 
transaction specific code do not comprise an account number; (e) disallowing 
communications transmitted with the first identification code that have a 
transarti on specific code that is different from the transaction specific code 
associated with the pointer in the first sequence of transaction specific codes; and 
(f) incrementing the pointers in the first communicating device and the host 
communicating device in a common predetermined sequence in the absence of an 
interrogation transmission from the second communicating device. 

16. The method of claim 15, wherein the first sequence of transaction codes is 
stored in a database. 

17. The method of claim 15, wherein the first sequence of transaction codes is 
calculated. 

18. The method of claim 17, wherein the second sequence of LransactJ on specific 
codes is calculated. 

19. A method of preventing the use of cloned device, comprising: (a) providing each 
of a plurality of communicating devices with a device identification code and an 
associated sequence of transaction specific codes; (b) providing a host 
communicating device with an identical copy of each of the device identification 
codes and the associated sequences of transaction specific codes; (c) setting 
pointers in the communicating device and the host device at the same transact -ion 
specific code in the sequence of transaction specific codes associated with each 
identification code; (d) transmitting a communication from the communicating device 
to the host communicating device along with the device identification code and the 
transaction specific code associated with the pointer in the sequence of transaction 
specific codes; (e) disallowing communications transmitted with the device 
identification code that have a transaction specific code that is different from the 
transaction specific code associated with the pointer in the sequence of transaction 
specific codes, wherein the identification codes and the transact! on specific codes 
do not comprise an account number, and (f) incrementing the pointers in the 
communicating device and the host communicating device in a common predetermined 
sequence in the absence of an interrogation transmission from the second 
communicating device. 

20. The method of claim 19, wherein the first sequence of transaction codes is 
stored in a database. 

21. The method of claim 19, wherein the first sequence of transaction codes is 
calculated. 

22. The method of claim 21, wherein the second sequence of transaction specific 
codes is calculated. 

23. A method of communicating, comprising: (a) providing a first communicating 
device with a first sequence of transaction specific codes; (b) providing a second 
communicating device with a second sequence of transaction specific codes, wherein 
the first and second sequences are identical; (c) setting pointers in the first and 
second sequences at the same transaction specific code; (d) transmitting a 
communication from the first communicating device to the second communicating device 
along with the transaction specific code adjacent the pointer in the first sequence 
without transmitting an account number; (e) refusing communications having a 
transact! on specific code that is different from the transaction specific code 
adjacent the pointer in the second communicating device; and (f) incrementing the 
pointers in a. predetermined sequence within both the first and second sequences to 
the next transaction specific code in the absence of an interrogation transmission 
from the second communicating device. 

24. The method of claim 23, wherein the predetermined sequence for incrementing the 
pointer is the same order as the first and second sequences of transaction specific 
codes. 

25. The method of claim 23, wherein the communication is a credit card transaction, 
and wherein the communication does not include an account number for the credit 
card. 
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31. The method of claim 23, further comprising the step of: after refusing a 
communication, resetting the pointer in the host database upon receiving a series of 
attempted communications having a series of transaction specific codes that match a 
portion of the database. 

32. The method of claim 23, wherein the pointer in both databases is directed to the 
same field containing the same transaction specific code prior to the first 
communication . 

34. The method of claim 23, further comprising the step of resetting the pointer in 
the host communicating device upon receiving a series of attempted communications 
having fransarhinn specific codes that match a portion of the database. 

35. A method of communicating, comprising: (a) providing a first communicating 
device with a first sequence of transaction specific codes; (b) providing a second 
communicating device with a second sequence of transaction specific codes, wherein 
the first and second sequences are identical; (c) setting pointers in the first and 
second sequences at the same transaction specific code; (d) transmitting a 
communication from the first communicating device to the second communicating device 
along with the transaction specific code adjacent the pointer in the first sequence 
and without transmitting an account number; (e) refusing communications having a 
hransarMon specific code that is not identical to a transartion specific code in 
the second communicating device within a predetermined range of fields in the 
sequence subsequent to the pointer in the second communicating device; and (f) 
incrementing the pointers in a predetermined sequence within both the first and 
second sequences to the next transaction specific code in the absence of an 
interrogation transmission from the second communicating device. 

36. The method of claim. 35, further comprising the step of resetting the pointer in 
the second communicating device to the field having a transaction specific code 
identical to the received transaction specific code if the field is within the 
predetermined range of fields subsequent to the pointer. 
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ART-UNIT: 3625 

PRIMARY- EXAMINER: To; Doris H. 

ATTY - AGENT - F IRM : Streets & Steele Streets; Jeffrey L. 
ABSTRACT : 

The present invention provides a method and apparatus for identifying and minimizing 
the use of cloned communicating devices which communicate with a host device. The 
method requires that the communicating devices send a transaction specific code and 
an identification code, along with each communication wherein the transaction 
specific code changes between each communication. One communicating device, either 
the authentic device or a fraudulent device might communicate with the host 
successfully any number of times. However, when a second devices attempts 
communication whether that device is the authorized device or fraudulent device, the 
host device will receive a tranaanti on specific code which is inconsistent or out of 
sequence with that expected by the host. The host device will preferably disallow 
all further communications involving the particular identification code until the 
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authorized user can be contacted and the transact: ion specific code reset or even a 
new set of t-ran.ga^inn specific codes are provided. Alternatively, upon detection of 
the inconsistent t-rangarHnn specific code, the host computer may prompt the user 
for information specific to the authorized user that is not stored in the 
communicating device and would not be readily available to the clone device or the 
user of the clone device. 

36 Claims, 8 Drawing figures 
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Abstract Text (1) : 

The present invention provides a method and apparatus for identifying and minimizing 
the use of cloned communicating devices which communicate with a host device. The 
method requires that the communicating devices send a trans act ion specific code and 
an identification code, along with each communication wherein the transaction 
specific code changes between each communication. One communicating device, either 
the authentic device or a fraudulent device might communicate with the host 
successfully any number of times. However, when a second devices attempts 
communication whether that device is the authorized device or fraudulent device, the 
host device will receive a t-ransartinn specific code which is inconsistent or out of 
sequence with that expected by the host. The host device will preferably disallow 
all further communications involving the particular identification code until the 
authorized user can be contacted and the transaction specific code reset or even a 
new set of txansaxzliion specific codes are provided. Alternatively, upon detection of 
the inmnsigfpnh hransari-inn specific code, the host computer may prompt the user 
for information specific to the authorized user that is not stored in the 
communicating device and would not be readily available to the clone device or the 
user of the clone device. 

Applirafinn Filing Date. (1) : 
1997Q9Q3 

Brief Summary Text (3) : 

The present invention relates to the security of communications, and more 
particularly to a method and apparatus for combating the use of cloned, fraudulent 
or unauthorized communicating devices, such as cellular telephones, credit cards and 
computer terminals. 

Brief Summary Text (5) : 

Communication signals are used widely in many different or interrelated fields, such 
as credit card anthnri zaf/inn systems, cellular telephone and radio communications, 
satellite i-rangmi fig-inns, t^l^phone calls, computer networks and modem connections, 
automated teller machine transmissions,' direct broadcast television, garage door 
openers, automobile remote devices and the like. While each of these fields may have 
different communication protocols, performance objectives and technical constraints, 
each of the fields have at least some concern for the security of the communication. 
Specific security concerns may deal with the content of the communication itself 
(often protected by encryption methods) , the integrity of the communication (often 
protected by error-checking and anti-virus software), and authorized access to the 
communication (often protected by account codes and passwords) . 

R-rief Summary Text (6) : 

Unauthorized access to communications and communicating devices has become a problem 
in many of the fields mentioned. Computer networks have been broken into by 
determining authorized account codes and passwords, thereby gaining access to 
proprietary information or computing capabilities Credit card transactions may be 
rhargpd by an unauthorized person by merely possessing a lost or stolen card . 
rpl hilar telephones may be duplicated or cloned to produce a large number of 
fraudulent telephones having the same account codes and personal identification 
codes as a lost or stolen authentic cellular telephone. Attempts to combat these 
unauthorized communications has taken many forms. 
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P-r-ipf Summary Tgxt (8) : 

For example, a serious problem in existing cellular telephone systems may be 
referred to as the "false mobile station" syndrome. It is presently possible to copy 
the entire memory contents of a mobile station and to use that information to 
manufacture clones which can demand and receive service from the network. Cellular 
phones may be cloned by reading the entire memory contents of the phone, including 
its identification codes, secret keys, internally stored personal identification 
codes, signatures, etc., and writing the same codes into any number of similar 
"clone" phones. The cloning procedure can become quite sophisticated and may include 
software modifications which replace physically stored information with 
electronically stored information so that a number of stored mobile station 
identities may be cyclically rotated within one fraudulent mobile station and used 
to imitate several authentic mobile stations. 

Brief Summary Text (9) : 

Similar breaches of communications have occurred in financial transactions involving 
credit cards . Typically, the information on a lost or stolen credit card can be 
electronically read and duplicated on any number of credit cards. The cards are then 
distributed and used until either the credit limit of the card is surpassed or the 
rar-d is reported stolen or lost to the credit card company. Significant actual 
losses are experienced each year due to the use of such "cloned" credit cards. 

Rrifif Summary Tpxt. (10) : 

Many communication systems, including ^n^lar telephone networks and credit card 
authentication nr anrhori 7atinn systems, comprise a vast number of distributed 
communicating devices (i.e., mobile ce] liilar phnnRR or credit cards and credit card 
readers) that transmit data to a central computer system in charge of determining 
whether or not to allow the communication to go through. The central computer system 
may execute an authorization algorithm to determine if the credit card has a valid 
account or identification number, if there is an available balance of credit and, 
perhaps, if a valid personal identification number has been given or entered. 
However, sophisticated thieves have been able to duplicate the credit card with 
valid identification numbers and determine even the personal identification number. 

Brief Summary Text (11) : 

Similarly, computer network communications or computer -to -computer communications 
may include files that are locked, password protected, zipped and/ or encrypted for 
various reasons, including the security of the content of the communication. 
Password protection provides a limited degree of security, primarily protecting a 
communication from being accessed by persons who casually encounter the file, but 
this security can still be violated. Encryption is perhaps the most secure means for 
preventing outsiders from obtaining the content of the communication and, therefore, 
is in widespread use by banks and other financial institutions throughout the world 
for many or all of their electronic transactions. 

R-Hfif Su mmary Text (15) : 

The present invention provides a method of authenticating a communication, 
comprising (a) providing a first communicating device with a first sequence of 
transaction specific codes ; (b) providing a second communicating device with a 
second sequence of i-rangarr i nn specific codes, wherein the first and second 
sequences are identical; (c) setting pointers in the first and second sequences at 
the same transaction specific code; (d) transmitting a communication from the first 
communicating device to the second communicating device along with a transaction 
specific code from the first sequence; (e) refusing communications having a 
transartinn specific code that is different from the transaction specific code 
expected by the second communicating device; and (f ) incrementing the pointers in 
both the first and second communicating devices. The first and second sequences of 
transartinn codes may be stored in a database or calculated according to various 
algorithms . 

Pri^f Summary Text (16) : 

The first and second communicating devices may take on various forms and functions. 
For example, the first communicating device may be a credit card and the second 
communicating device a central clearinghouse; the first communicating device may be 
a ppI hilar telephone and the second communicating device a cellular network; the 
first communicating device may be a garage door remote and the second communicating 
device a garage door opener; the first communicating device may be an automobile 
remote unlock device and the second communicating device an automobile remote unlock 
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device receiver; the first communicating device may be a computer and the second 
communicating device another computer; and the first communicating device may be a 
direct broadcast television system and the second communicating device a television 
receiver. It should also be recognized that the communication may proceed through 
transmissions selected from electrical, radio and optical. 

RHpf Summary Text (17) : 

The invention also provides a method of authenticating a communication, comprising: 
(a) providing a first communicating device with a first identification code and a 
first sequence of transaction specific codes; (b) providing a host communicating 
device with the first identification code and the first sequence of transaction 
specific codes; (c) setting pointers in the first sequence of transaction specific 
codes of both the first communicating device and the host device at the same 
r-ransaoti on specific code ; (d) transmitting a communication from the first 
communicating device to the host communicating device along with the first 
identification code and the transacfci on specific code associated with the pointer in 
the first sequence of transaction specific codes; (e) disallowing communications 
transmitted with the first identification code that have a transaction specific code 
that is different from the transaction specific code associated with the pointer in 
the first sequence of transaction specific codes; and (f) incrementing the pointers 
in the first communicating device and the host communicating device. 

ftr-ifif Su mmary Tf>yt (18) : 

The invention further provides a method of authenticating a communication, 
comprising: (a) providing each of a plurality of communicating devices with a device 
identification code and an associated sequence of transaction specific codes; (b) 
providing a host communicating device with an identical copy of each of the device 
identification codes and the associated sequences of transaction specific codes; (c) 
setting pointers in the communicating device and the host device at the same 
hransarfinn specific code in the sequence of transaction specific codes associated 
with each identification code; (d) transmitting a communication from one of the 
communicating devices to the host communicating device along with the device 
identification code and the t-ransartion specific code associated with the pointer in 
the sequence of i-ransarhinn specific codes; (e) disallowing communications 
transmitted with the device identification code that have a transaction specific 
code that is different from the rransacri on specific code associated with the 
pointer in the sequence of transact ion specific codes; and (f) incrementing the 
pointers in the communicating device and the host communicating device. 

Rripf Su mmary Tpxt (19) : 

The invention also provides a method of detecting the existence of two or more 
communicating devices having the same identification code comprising the steps of: 
(a) transmitting an identification code and a transaction specific code from a first 
communicating device to a host device; and (b) comparing the transaction specific 
code received by the host device with a next expected transaction specific code for 
a communicating device having the particular identification code. 

ttri^f Snmmary Tpxt (20) : 

Further, the invention provides a method of communicating between a communicating 
device and a host device, comprising the step of transmitting an identification code 
and a traiisacJ^ian specific code to the host device wherein the identification code 
is unique to the communicating device and the transaction specific codes are 
predetermined and known by the communicating device and the host device for the 
purpose of allowing the host device to detect the usage of a fraudulent 
communicating device having the same identification code. The method may also 
comprise changing the t-ransacr-i on specific code for subsequent attempted 
communications. The method may further comprise disallowing communications having an 
-imprope r transaction specific code. 

Rrifif Summary Text (21) : 

The invention additionally provides a method of disallowing communications initiated 
by fraudulent communicating devices comprising (a) receiving an identification code 
and a transaction specific code from a communicating device; (b) searching a list of 
t-ransaoti on specific codes in the host device; and (c) having a predetermined 
sequence of t-ran.garr ion specific codes for the next expected transaction specific 
code from a device having the received identification code. 

Brief Summary Text (22) : 

Finally, the invention provides a method of re synchronizing the next expected 
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tr-ansaotion specific code between communicating devices by matching a pattern of 
hran.garhinn specific codes in the communicating device with a pattern of transaction 
specific codes in the host device. 

drawing Description Text (5) : 

FIG. 3 is a schematic diagram of a simple credit card apparatus which includes a 
magnetic strip or other communication media. 

Drawing Description Text (6) : 

FIG. 4 is a cross- sectional view of the credit card of FIG. 2. 
Drawing De script ion Text (7) : 

FIG. 5 is a partial cross -sectional view of the credit card of FIG. 4. 
Detailed Description Text (2) : 

The present invention provides a method and apparatus for identifying and approving 
authentic communications. Such method and apparatus are important for preventing 
unauthorized communications through various communication media, including 
electronic, audible, visual or the like. Perhaps the most widely used media for 
communications in business and personal applications include electronic and radio 
frequency communications such as those involving computer to computer transfers, 

credit rarri anhhnri ?ahinn and approval, cellular telephone calls and data 

transmissions, satellite broadcasts, automated teller machine transactions, and 
other electronic communications. For various reasons, it is frequently desirable or 
necessary for access to these communications to be restricted to authorized persons, 
authorized equipment, authorized locations, and the like. While the set of criteria 
necessary to authenticate a transmission or communication may be short and simple or 
long and complicated, the present invention proposes a simple, yet effective, method 
for preventing unauthorized communications. More particularly, the present invention 
prevents the successful use of multiple cloned or otherwise fraudulent devices, and 
limits the use of even a single cloned or otherwise fraudulent device to the time 
interval between the "cloning" event and the next authentic communication. Such time 
interval may be as long as several days (for example an infrequently used credit 
card) or as short as fractions of a second (for example in electronic financial 
transactions between institutions) . 

Detailed Description Text (3) : 

In one aspect of the invention, a method is provided for preventing the cloning and 
fraudulent use of various authentic communicating devices. Attempts to increase the 
complexity of the communicating device or the difficulty of successfully duplicating 
the device have met with limited success, because once the device has been 
successfully cloned, unauthorized communications may be accomplished. The methods of 
the present invention do not depend upon the complexity of the physical 
communicating device or the magnitude of possible security codes or keys, but 
xather, the present invention provides for transmitting a transaction specific code 
along with identification codes and the communication itself in accordance with a 
predetermined set of transaction codes known to a central authorizing device or 
host. These codes may take various forms including, but not limited to, numeric, 
alphabetic, alpha numeric and the like and may be transmitted through various media 
including, but not limited to, digital or analog electronic signals, radio waves, 
light waves, chemical or other optical means, other wave forms, and the like. The 
transaction specific code may be as simple as a sequential set of algorithmically 
generated numbers, such as 1 through 100, or some random set of codes predetermined 
and stored in both the communicating device and the host communicating device. 

Detailed Description Text (4) : 

The invention operates on the principal that when an authorized communicating device 
transmits a series of communications, with each communication accompanied by a 
transaction specific code, the host or receiving device, such as a computer, will 
expect to receive the transaction specific codes in a particular, predetermined 
sequence. So long as subsequent communications contain a transaction specific code 
consistent with the existence of only one authorized communicating device having a 
given identification code, then the communication may be allowed or authorized. In 
the event that communications are initiated containing transaction specific codes 
which indicate the presence of duplicate communicating devices, then the 
communications will be disallowed. The methods just described do not address or 
prevent the physical cloning of the communicating device, but rather prevent the 
successful use of cloned devices over a period of time or the successful access to a 
communication over a period of time. 
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Detailed Dfifinn pf ion Tpyt (5) : 

In another aspect of the invention, subsequent communications may be re- initiated by 
resetting the pointer at a different point in the sequence of predetermined codes in 
the authorized communicating device. In this case, the host device must also be 
informed of the reset point in order maintain synchronization. Alternatively, the 
communicating device and host device may be provided with a new set of t-.ransart-.inns 
specific codes. The provision of new codes may be accomplished in any manner, manual 
or automatic, but automatic or periodic updating of codes may require modification 
of existing communicating devices which do not have sufficient receiving and storing 
capabilities. 

Detailed Description Tevt (6) : 

Typical cloning patterns, such as those experienced in the credit card and cellular 
telephone markets, involve the loss or theft of a single authorized communicating 
device, i.e., the physical credit card or rpllnlar hplpphr>np. f which is then 
duplicated to provide a large number of fraudulent devices which operate identical 
to the authorized communicating device. In accordance with the prior art, the 
successfully cloned, yet fraudulent, devices were allowed to communicate 
successfully leading to loses of millions or billions of dollars. As indicated 
above, the methods of the present invention do not rely upon device designs which 
are presently difficult to copy or clone, but provides a method by which the use of 
two or more devices, such as the authorized devicedand one fraudulent device or 
multiple fraudulent devices, is identified by the host device upon receiving a 
t-ransart-inn specific code which is inconsistent with the predetermined set of codes. 



Detailed Dpsrript-if>n Teyt (7) : 

In one aspect of the invention, the degree of inconsistency in the transaction 
specific codes can be modified or tailored to a specific application. For example, a 
transaction specific code may be sufficient to allow a communication to be 
authorized so long as it falls within a particular range of transaction specific 
codes expected by the host. More particularly, in the situation where the 
transaction specific codes are a sequence of numbers from 1 through 100 listed in 
numerical order, a sequence of communications would be expected to include 
LransactJ an specific codes that fall in a sequence, such as 1, 2, 3, 4, 5, etc. 
However, for specific applications such as credit card use, it may be acceptable to 
allow or authorize communications containing transaction specific codes that are 
within a range of codes next expected by the host. Therefore, if the host was 
expecting to received transact! on specific codes ofl, 2, 3, 4, 5, 6, 7, 8, etc. 
over a series of communications, then a series of communications containing 
transaction specific codes ofl, 2, 4, 5, 7, 8 would be allowed if the host device 
were programmed with a tolerance of two codes. It is also anticipated that the host 
computer may take additional action if the transaction code tolerance is required 
too frequently. 

Detailed Description Tevt (8) : 

It should be recognized that the set of codes to be transmitted by the authorized 
communicating device and stored in a database within the host device may comprise a 
mere list or database of transaction specific codes established in a given order. 
While the fields of the database are maintained in a certain sequence, the 
transaction specific codes within those fields may vary in any manner. Therefore, 
the database programmed into the communicating device and the host device may have a 
database segment containing the numerical transaction specific codes of 54, 86, 32, 
64, 35, and 97. To an outside observer or someone intercepting these codes, the code 
would appear to be random or at least undeterminable. However, the host device knows 
what the next expected transaction specific code is to be, i.e., if the previous 
transaction specific code was 86, then the next expected transaoti on specific code 
is32, but transaction specific code of 64 would be accepted if the tolerance were 
set at two fields. This ability allows the host computer to determine whether or not 
the communication is authentic. In this context, the concept of tolerance no longer 
implies that the transaction specific code has a numerical value within a certain 
range, but rather that the transaction specific code may be found within a range of 
fields within the database forwardly adjacent to a field containing the next 
expected code. The ability of the database to contain any number of transacti on 
specific codes of any length or type of signal vastly increases the difficulty of 
predicting the next transaction specific code. However, even in the simplest of 
embodiments, where the transaction specific codes comprise a sequence of numbers in 
numerical order, the invention still prevents widespread cloning in the manner 
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described above. Furthermore, a simple embodiment of the present invention allows 
the host computer to dispense with an actual database but rather comprise a single 
data register or memory location for storing either the last transaction specific 
code, the next expected transaction specific code, or some equivalent means of 
tracking used or soon to be used codes. 

Detailed Description Text (9) : 

While the foregoing discussion has dealt primarily with detecting unauthorized 
communicating devices, the present invention may also include the ability to detect 
unauthorized users. In many applications, including credit card authoriza t-.Ton and 
approval and rpllnlar hplpphnnp. communications, it is frequently desirable to verify 
that the communication is being initiated by an authorized user. The inclusion of a 
user authorization system is beneficial for reducing the use of the authentic 
communicating device when it has been stolen or lost . Losses due to the use of lost 
or stolen communicating devices is also very significant, but is inherently limited 
to the capacity of via the authorized communicating device itself, i.e., one 
communication at a time, a credit limit, etc. Furthermore, the use of lost or stolen 
communicating devices by unauthorized users may be restricted by the use of user 
specific codes, such as a personal identification number (PIN) , finger print, 
password, voice command and the like. 

Detailed Description Text (10) : 

In another aspect of the invention, the host device and/or the communicating device 
may be programmed to verify the identity and authenticity of the device alone or in 
combination with the user. In one example, the host computer may first verify that 
the communication is being initiated from an authorized communicating device, then 
prompt the user to enter a personal identification code (PIN) indicating that the 
user is also authorized. Only upon satisfaction of these two criteria is the 
communication be allowed to proceed. It should be recognized that the host device 
could be programmed to verify these two codes, or other additional codes and 
authorizations, in any order. In another example, the communicating device itself 
may require the successful input of a personal identification code prior to enabling 
or energizing the transaction specific code, any portion of the device 
identification code or even some portion of the communication itself. 

Detailed Description Text (11) : 

A still further aspect of the invention provides for automatic re -synchronization of 
the transaction specific codes following one or more unauthorized communications. 
Re -synchronization methods according to the present invention may be achieved by 
programming the host device to reset the pointer in a database of transaction 
specific codes for a particular identification code upon receiving a series of 
attempted communications having a series of transaction specific codes that match a 
portion of the database. For example, after receiving an attempted communication 
having a t-.ranaart.i on specific code that is not the next expecte d transaction 
specific code or within the range of tolerance, no further communications using the 
same identification code can proceed until the transaction specific codes of the 
communicating device and the host are re -synchronized. If the host device is 
programmed to allow re -synchronization after receiving three fcransacti on specific 
codes (i.e., 12, 13, 14) that match a portion of the host database (i.e., 10, 11, 
12, 13, 14, 15, 16, etc.) for the given identification code, then the pointer in the 
host database is reset for the next transaction specific code (i.e., 15) in the 
database. Subsequent communications may proceed in accordance with the 
aforementioned methods. It may be beneficial to a separate range of tolerance for 
re -synchronization in order to prevent re -synchronization at a dramatically 
different point in the sequence of transaction specific codes. 

Detailed Description Text (12) : 

Another aspect of the invention provides for periodically incrementing, or otherwise 
moving, the pointers in the transaction specific codes in both the communicating 
device and the host device. The periodic movement of the pointer is advantageous 
because it effectively shortens the time period or "window of opportunity" in which 
a cloned device having a full and correct set of transaction specific codes may 
operate. For example, if an authentic communicating device is infrequently used, a 
cloned device may initiate successful communications until such time as the 
authentic communicating device is used again. However, if the authentic 
communicating device and the host device are designed or programmed for periodically 
moving their database pointers, in accordance with a predetermined algorithm, then 
the cloned device may initiate successful communications only until the next 
movement of the database pointers. Specifically, the database pointers may be 
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incremented by one or more fields after specific time intervals, i.e., ten minutes, 
an hour, a day, etc. 

Derailed Degrri 'pri on Text (13): 

FIG. 1 is a schematic diagram of an identification and authorization system 10 in 
accordance with the present invention. A communicating device 12 generates and 
transmits a communication 16 to a host device 14, wherein the communication 16 
comprises an identification code 18, a transaction specific code 20 and the content 
22 of the communication itself. Note that both the communicating device 12 and the 
host device 14 contain similar databases, lists or tables 24, 26, respectively, 
having a plurality of fields 28, 30 containing the same transaction specific codes 
in the same sequence. Prior to the first communication, a pointer in both databases 
is directed to the same field containing the same transaction specific code. 

Detailed DpsrHphiQn Text (14) : 

It should be recognized that the host device 14, or perhaps even communicating 
devices which are capable of transmitting or receiving communications from or to a 
plurality of other devices, may have a plurality of n lists of transaction specific 
codes, where n is the number of authorized identification codes, such as the 
identification code 32 having the list 26. Each of the n lists in the host device 14 
will have a pointer, such as pointer 34, which indicates the next expected field in 
the sequence of m fields in the list or database 26 which, in turn, contains the 
next expected rrangarr-ion specific code (i.e., TS Code=ABC123) . Similarly, the 
database 24 of the communicating device 12 has a pointer 36 which indicates the next 
hranffart-i on specific code (i.e., ABC123) to be transmitted along with the 
identification code 38. Upon receiving the communication 16, the host device 14 
determines the identification code 18 and looks for the identification code among 
the n authorized identification codes. Then the host device 14 compares the 
trariRart-.inn specific code 20 received from the communicating device 12 with the 
j-ran.gart-.inn specific code 30 indicated by the pointer 34. 

Detailed Description Text (15) : 

During subsequent communications, the transmission from the communicating device 12 
will contain subsequent transaction specific codes 28 from the database 24. Errant 
or failed communications may lead to the pointer 36 of the communicating device 12 
incrementing to the next field in the database 24 without the communication ever 
being received by the host device 14 and, consequently, without the database 26 of 
the host device 14 ever being incremented. This and other similar situations 
represent a benefit of using the tolerance feature described above. If the host 
device 14 receives a r ran sari- ion specific code 20 falling in the database within a 
reasonable range of fields, typically only fields in the forward direction, then the 
communication is allowed to proceed. For example, if the tolerance is set to three 
fields 40 and the pointer 34 is set at the field containing "ABC123", then the host 
device 14 may authorize communications having an identification code 32 and a 
rransar-r-ion specific code of "ABD123", " MOON" or "FRED", but not "DOG" (since it is 
not in a forwardly directed field) or "64 "(since it is outside the tolerance range 
of 3) . In this example, if the communication was authorized on the basis of a 
i-ransartinn specific code of "FRED", then the database pointer 34 in the host device 
14 would preferably be reset to a next expected transaction specific code of "64" 
which matches that of the communicating device 12 . 

Derailed De.grri pt i on Text (16) : 

It should be recognized that communications having acceptable identification codes 
and rransart -ion specific codes may be further subject to verification of other 
conditions, such as a personal identification number (PIN) and the like. Examples of 
other conditions or criteria useful for determining whether or not to authorize a 
particular communication include the location from which the communication is 
initiated, the frequency with which communications occur, the type of communication 
being attempted, the content of the communication itself, and discrepancies between 
time and space which indicate the unlikely use of a single device suggesting 
cloning. Other useful criteria will become apparent in specific applications. 

Dei-ailed De«rri pt A on Text (17) : 

As shown in FIG. 1, the communicating device 12 preferably includes a member 42 for 
providing the content 22 of the communication 16 to a transmitter 44. The actual 
transmission may be initiated in any number of manners, but specifically may be 
initiated with a "send" button 46, such as that on a cellular telephone or by the 
act of swiping a credit i^axd. The host device 14 preferably includes a receiver 48 
and a central processing unit (CPU) 50. The CPU 50 is provided with the 



7 of 14 



11/21/03 2:0? 



communication 16 from the receiver 48 and executes a series of steps in order to 
authenticate the communication. 

Detailed Dfi.grription Text (18): 

FIG. 2 is a conceptual diagram which is useful for arriving at a full understanding 
of the one aspect of the present invention. The diagram of FIG. 2 presents a set of 
keys on a ring 52 and a set of locks 54 in a door 56 which operate analogous to the 
present invention. The key ring 52 (communicating device) includes a fob 58 
(identification code) and a plurality of keys 60 (transaction specific codes) . The 
door 56 (host device) includes a plurality of locks 62 (expected transaction 
specific codes) for each fob (identification code) which can only be unlocked by 
using a specific key (transmitted transaction specific code) . The locks 62 
( hransarfinn specific codes) in the door (host) are rotated (incremented) in the 
direction of arrow 64 by a mechanism each time the door is unlocked. Similarly, the 
keys ( t-ransarhinn specific codes) on the key ring 52 are rotated (incremented) each 
time a key is used. 

Detailed Dpscnptinn Text (19) : 

The door and key ring are initially used as shown, with the key a and lock A ready 
for the first unlocking of the door (communication) . When key a unlocks the door 
with lock A, then the door is open for a i-ran.garf.inn to pass therethrough. Note that 
the fransarfinn does not need to have any actual connection with the key nor the 
lock. Anything may move through the doorway once the door is unlocked. 

Detailed Description Text (20) : 

When the transaction is completed, the door is closed, the next lock in the rotation 
is moved into place and the keys are rotated around the ring in preparation for the 
next unlocking. In this case, the key b is positioned as the next key to be used and 
the lock B is positioned as the next operating lock in the door. 

Detailed Dfisrripf inn Text (21) : 

To enable the next fran.garfi on r key b is used with lock B. The door is unlocked and 
open for fbp fran.garfinn as before. When this second transaction is completed, the 
door is closed and both the keys are rotated to key c and the locks are rotated to 
lock C. Note that this transaction system operates with synchronous rotation of the 
keys and locks. Only one key on the ring will unlock the door for any specific 
franfiarfinn f thereby providing much greater security than a more complex key. 

Detailed Description Text (25) : 

This mechanical analogy illustrates four features of sequential synchronized keys: 
(1) it is difficult to guess the next key; (2) the keys are not specifically related 
to the content of the transaction ; (3) there are various ways of guarding the lock 
from tampering; and (4) there are various ways of guarding the keys from 
duplication. 

Detailed Description Text (26) : 

FIG. 3 is a schematic diagram of a credit card apparatus 70 which includes a body 
member 71, perhaps made of plastic, and a magnetic strip 72, such as iron oxide, or 
other communication media which is preferably enabled upon successful entry of a 
predetermined personal identification number. A personal identification number may 
be entered through a dedicated or multipurpose key pad 74 made according to various 
designs known in the art. The complexity of the keypad 74 may vary from a fall ten 
digit keypad or a full alphabetic keyboard to a much simpler keypad containing, for 
example, three or four buttons that are color coded. Regardless of the complexity or 
number of keys, the personal identification number may contain as many digits as 
desirable. 

Detailed Description Text (27) : 

In a further aspect of the invention, the successful entry of a personal 
identification number or code may also result in the generation of a visual 
indicator on a display 76 that signifies successful entry. Such a visual indicator 
would be useful in applications where the initiation of the communication is 
attended by a representative interested in the proper authorization of the 
communication, for example, a sales clerk in a retail outlet which either does not 
have electronic authorization equipment or such equipment is presently inoperable. A 
visual indicator may also be useful in situations where electronic verification 
equipment is available, but the sales representative is available to monitor the 
number of unsuccessful attempts at entering the personal identification number. In 
any of these circumstances, the sales clerk could require the visual indicator prior 
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to proceeding with the transaction or communication. 



Hpt-ailpH Dr script ion Text (28) : 

Still referring to FIG. 2, the card 70 of the present invention makes use of 
conventional magnetic media supplemented with at least one electronically generated 
bit of information. This electronically generated bit may occur anywhere in the 
magnetic strip 72, including the region 78 containing a cyclic redundancy check or 
other verification code such as a check bit system, the region 80 containing an 
identification number, the region 82 containing the transaction specific code, or 
any other region. Further, the electronically generated bit may comprise its own 
region 84, perhaps indicating to the host through a card reader that the user is 
authorized, i.e., has successfully entered the personal identification number. 

Detailed Description Text (29) : 

Operation of the nard 70 is facilitated by an energy source 86, such as a lithium 
battery or a solar cell . The energy source 86 must provide sufficient power for any 
device on the card, such as the display 76, an electronically generated bit (shown 
here as located in the region 82), the keypad 74 and a CPU 88. The CPU 88 may be 
entirely embedded within the r?ard 70 or located as desired for protection of the CPU 
or ease of manufacture. The CPU 88 is responsible for verifying correct PIN entry 
from the keypad 74, providing a signal to display 76, controlling the electronically 
generated bit(s) (shown here in region 82), and other various functions that are 
necessary or desirable to the function of the card. Further, the card 70 may 
comprise a multifunction device such as a calculator, etc. 

Detailed Descript i on Tpyh (30) : 

FIG. 4 is a cross-sectional view of the credit card 70 of FIG. 3. Specifically, an 
electronically generated bit is produced by a small wire 90 disposed across the path 
of the magnetic strip 72. Each wire 90 is coupled to the energy source or battery 86 
which, under control of the CPU 88, will provide electrical current to the wire 90 
for a predetermined time period. The amount of current passing through the wire 90 
is preferably no more than that sufficient to induce a magnetic flux at the surface 
of the credit card 70 which is equivalent to, or at least detectable by a card 
reader 92 as equivalent to, a zero (0) or a one (1) in the magnetic strip. When the 
electronically generated bit is inactive (not energized) , reading the magnetic strip 
will indicate that a bit is missing (i.e., neither a zero or one are detected) and 
that the rard is damaged, ineffective or unauthorized. 

Detailed Description Text (31) : 

In another aspect of the invention, this electronically generated bit or any number 
of electronically generated bits may be provided to indicate other information about 
the use of the Hard, such as an excessive number of attempts to enter the personal 
identification code. Other uses for additional electronically generated bits will 
become apparent in particular applications. 

Detailed Description Text (32) : 

The present invention encompasses the use of any number of electronically generated 
bits or conductive wires 90. However, in order to merely energize the card and 
complete a coherent transmission, only a single wire is necessary. However, in other 
embodiments, it is anticipated that multiple wires will be desirable. For example, 
transaction specific codes may be provided by the internal CPU or other similar 
logic circuit and provided to the card reader or host device through a series of 
electronically generated bits positioned adjacent the active strip area or region 
80. 

Detailed Description Text (34) : 

FIG. 5 is a partial cross -sectional view of the credit card of FIG. 4. A portion of 
the magnetic strip region 80 is shown made of a magnetic media, such as iron oxide, 
which form a magnetic field 95 between a north pole 94 and an adjacent south pole 
96, to indicate a single bit of information containing a "1". Immediately adjacent 
or abutting the region 80 is a region 82 having at least one electronically 
generated bit produced by the conducting wire 90 disposed in the card . The wire 90 
may be round or square, but is preferably square to maximize the magnetic field 98 
generated above the card surface in accordance with known principles of induction. 
The "right-hand rule" of induction requires that an electrical current flowing 
through the wire 90 in the direction out of the page will cause a magnetic flux 98 
in a direction counter-clockwise on the page. The magnetic field 98 can be made 
similar in strength to the magnetic field 95 by adjusting the amount of electrical 
current in the wire 90. Additionally, each wire 90 shown in FIGS. 4 and 5 may be 
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replaced by multiple windings of a smaller wire in order to obtain greater magnetic 
flux with the same amount of current. These and other expedient modifications will 
be apparent to one of ordinary skill in the art and are deemed to be within the 
scope of the present invention. 

Detailed Description Text (35) : 

FIG. 6 is a logic diagram of a program 100 for operating a communicating device. 
While the communicating device may operate in various manners without departing from 
the present invention, the program 100 includes verifying a PIN, incrementing the 
device pointer to the next transaction code, then transmitting the identification 
number, the transaction code and other optional information. Specifically, the PIN 
verification procedure may allow multiple attempts at entering the correct PIN, but 
deactivates the card if the correct PIN is not entered within x tries. 

Detailed Description Text (36) : 

FIG. 7 is a logic diagram of a program 110 for operating a host device, such as a 
central or host computer having electronic communication with a plurality of 
communicating devices. This type of communication is typically discontinuous, 
meaning that communication sessions are of a finite duration and are separated by at 
least some pause or period of non- communication. As previously indicated, the host 
device will comprise a database containing a sequence of fields storing transaction 
specific codes. Each authorized communicating device is provided with a database or 
list of this same type contained in its computer memory, perhaps having a unique set 
of codes for each device. The same or different database may also contain 
information about the user, identification codes, device identification codes, and 
other verification information such as mother 1 s maiden name and other information 
personal to the user. Such database may also contain historical information about 
the use of the authorized device or the preferences of the authorized user. All of 
this information may potentially be used by the computer to determine whether or not 
a communication is to be allowed. 

Detailed Description Tpyh (38) : 

If the identification number of the device is valid, then the host will locate its 
database of information and will begin to verify various information. This 
verification may proceed in any logical order, but is presented here as proceeding 
to determine whether the transactions specific code received from the communicating 
device is the same as the next expected transaction specific code in the host 
database. Without the programming or entry of a tolerance factor in the computer 
program, the transaction specific code transmitted and the next expected transaction 
specific code must be identical to allow the communication to proceed. However, it 
is believed to be beneficial in many applications to provide for some degree of 
tolerance. The term "tolerance" in the context of transact i on specific codes 
preferably means that the transaction specific code received from the communicating 
device is identical to a transaction specific code stored in the host database 
within a range of fields sequentially subsequent to a previously received 
transaction specific code, i.e., a transaction specific code from a prior 
communication that was successful or authorized. Restated for the purposes of 
clarity, the host database pointer can be made forwardly tolerant by any number of 
fields. The extent of the forward tolerance will be specific to various applications 
depending upon a host of factors including the reliability of the data or 
communication, i.e., the nature and frequency of interruptions that are likely to 
occur even by authorized devices. In this manner the tolerance factor becomes a 
filter for distinguishing authorized communications from those that are not. 

Detailed Description Text (39) : 

If the transaction specific code received is accepted, the pointer in the host 
database is reset at the transaction specific code received. The program may then 
look to other criteria in the transmission before authorizing the communication. As 
previously indicated these other criteria may include the specific location from 
which the communication is initiated, the frequency with which communications have 
been initiated, the nature or content of the communication itself, or other criteria 
that would be application specific. 

Detailed Description Text (40) : 

Depending upon the complexity of the communication or the degree of security 
desired, the communicating device may operate in a manner such that its database is 
self -incrementing upon successful entry of the personal identification code or upon 
successful communication with the host device. Alternatively, the database in the 
communicating device may be incremented only upon successful communication with the 
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host device and/or only at the command of the host device. In the later situation, 
the host computer may send a new field location, or pointer, in the database rather 
than simply the next incremental location. Furthermore, in some applications where 
the communicating device has sufficient receiving and storing capabilities, the host 
computer may simply hand the communicating device its next transaction specific code 
necessary for communicating. Subsequent communications would then contain the new 
transaction specific code or password and any unauthorized communications would 
contain old or previously used codes. Therefore, while the role of the host computer 
is to verify or authenticate the communication, either the communicating device 
itself or the host computer may take control over the selection of the next 
transaction specific code, at least with a predetermined set of codes. In various 
embodiments, this control may be granted solely to the communicating device, solely 
to the host computer, or some combination thereof. An example of combined control 
over the transaction specific code sequence would be a communicating device 
programmed to increment after each communication, but subject to the host computer f s 
periodic command to relocate the pointer in its database. 

Detailed Description Text (41) : 

It should be recognized that one of the distinct advantages of the present invention 
is its adaptability to existing communication systems without significant 
modification of the communicating device or its peripherals. For example, in the 
application of cellular telephone communications, the modern eel "hilar telephone is 
already equipped with a CPU having at least a minimum counting capability. A simple 
programming change in the callular telephone would allow the counter's equivalent of 
a transaction specific code to be uploaded and transmitted along with the rel hilar 
telephone identification number and/or user identification number. Programing of the 
host device would proceed in accordance with the description of FIG. 7 

Detailed Description Tpyt. (42) : 

Further, the program 110 of FIG. 7 may optionally include a subroutine 120 for 
automatically re synchronizing the pointer in the host database to correspond with 
the pointer in the database of the communicating device. The pointer is 
re synchronized by receiving and storing a sequence of r transaction specific codes 
from a sequence of r attempted communications. If the sequence of transaction 
specific codes matches any sequence of expected transaction specific codes in the 
host database, then the host pointer is reset to the transaction specific code 
following the last received transaction specific code. 

Detailed Description Text (43) : 

When the present invention is applied to credit card use, the credit card itself 
must be modified to include a CPU, counter circuit or other logic circuit which can 
maintain, store, and update the transaction specific codes and a means for 
transmitting the transaction specific code to the credit card reader. The preferred 
method of achieving this is shown in FIGS. 3-5. While this is a significant 
modification of a credit card, the issuance of new cards made in accordance with 
FIGS. 3-5 is estimated to cost less than about $2.00 per card and is deemed by the 
inventors to be a reasonable expense in light of the potential billion dollar 
savings in preventing a significant portion of credit card fraud. Modifications 
required of the host device are mere program changes which are believed to be 
relatively minor. Alternatively, various aspects of the present invention may be 
realized without modifying the actual credit card or other communicating devices by 
providing a separate, supplementary device, such as a hand held electronic device 
having a keypad, CPU, energy source and display, to be used in conjunction with the 
credit card . Such supplementary device would be used in an identical fashion as that 
described with reference to FIGS. 3-5, except that PIN input and transaction code 
generation and display are not performed within the card but in the supplementary 
device. The supplementary device may provide various modes of display or 
communication of the transact i on specific code to the host device, including a 
visual display that is manually entered into the point-of-sale computer or card 
reader, an electronic signal, or other communication means known in the art. 

Detai Ted Description Text (44) : 

In one alternative embodiment, upon detection of an inconsistent or out of sequence 
transaction specific code, the host computer does not need to immediately disallow 
the attempted communication but rather may prompt the communicating device for 
additional information which is known only to the authorized user. In this manner, 
inconvenience to authorized users may be minimized while achieving the objective of 
preventing use of cloned devices. The prompt for user specific information may 
include any information that the authorized user has previously made available to 
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the host device or an individual entity operating the host device. For example, 
discussions with financial institutions or credit card organizations about an 
individuals credit may require the requestor to successfully give the maiden name of 
the user's mother. Furthermore, it should be recognized that this user specific 
information does not need to be the same type of information for each user. 

n^l-a-M^r i DRgrr-ipt-i on Text (45) : 

While most of the foregoing discussion about the present invention has focused on 
the use of databases, lists and tables for storing tranaartinn specific codes, it 
may be preferred in some applications having limited memory to provide an algorithm 
for calculating the next tTansar.t-.inn specific code. In these applications, the 
pointer refers to the number of steps into the algorithm or the value input into the 
algorithm and the transaction specific code is the calculated output of the 
algorithm. The host device is provided with the same algorithm and compares the 
fransarfinn specific code received from the communicating device with the next 
expected transaction specific code. The concept of "tolerance" described earlier may 
be incorporated either by setting an acceptable range of values for the transaction 
specific code (output of the algorithm) or the pointer itself (input to the 
algorithm) , the later being the equivalent of back calculating the pointer and 
verifying that it is within the range of tolerance. 

rurrp.nt Ufi frns R p P f ft rPTipp Cl agfi-i f i rati on (2) : 
705/64 



CLAIMS : 



1. A method of preventing the use of a fraudulent device, comprising: (a) providing 
a first communicating device with a first sequence of transaction specific codes; 
(b) providing a second communicating device with a second sequence of transaction 
specific codes, wherein the first and second sequences are identical; (c) setting 
pointers in the first and second sequences at the same transaction specific code; 
(d) transmitting a communication from the first communicating device to the second 
communicating device along with t-hf> fransa^inn specific code indicated by the 
pointer in the first sequence, wherein the communication and t-.ranfiart-.inn specific 
code do not comprise account numbers; (e) refusing communications having a 
transact! on specific code that is different from the transaction specific code 
indicated by the pointer in the second communicating device; and (f) incrementing 
the pointers in a predetermined sequence within both the first and second sequences 
to the next transaction specific code in the absence of an interrogation 
transmission from the second communicating device. 

2. The method of claim 1, wherein the first sequence of transaction codes is stored 
in a database. 

3. The method of claim 1, wherein the first sequence of transaction codes is 
calculated. 

4. The method of claim 3, wherein the second sequence of transaction specific codes 
is calculated. 

5. The method of claim 1, wherein the first communicating device is a credit card 
and the second communicating device is a central clearinghouse, and wherein the 
device identification code is not an account number for the credit card. 

6. The method of claim 1, wherein the first communicating device is a cellular 
telephone and the second communicating device is a eel lular network. 

15. A method of authenticating a communication comprising: (a) providing a first 
communicating device with a first identification code and a first sequence of 
t-ransart-inn specific codes ; (b) providing a host communicating device with the first 
identification code and the first sequence of transaction specific codes; (c) 
setting pointers in the first sequence of transaction specific codes of both the 
first communicating device and the host device at the same transaction specific 
code; (d) transmitting a communication from the first communicating device to the 
host communicating device along with the first identification code and the 
transation specific code associated with the pointer in the first sequence of 
transaction specific codes, wherein the first identification code and the 
t-ransartion specific code do not comprise an account number; (e) disallowing 
communications transmitted with the first identification code that have a 
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j-yansanHnn specific code that is different from the transaction specific code 
associated with the pointer in the first sequence of transaction specific codes; and 
(f) incrementing the pointers in the first communicating device and the host 
communicating device in a common predetermined sequence in the absence of an ■ 
interrogation transmission from the second communicating device. 

16. The method of claim 15, wherein the first sequence of transaction codes is 
stored in a database. 

17. The method of claim 15, wherein the first sequence of transaction codes is 
calculated. 

18. The method of claim 17, wherein the second sequence of transaction specific 
codes is calculated. 

19. A method of preventing the use of cloned device, comprising: (a) providing each 
of a plurality of communicating devices with a device identification code and an 
associated sequence of transaction specific codes; (b) providing a host 
communicating device with an identical copy of each of the device identification 
codes and the associated sequences of transaction specific codes; (c) setting 
pointers in the communicating device and the host device at the same transaction 
specific code in the sequence of transaction specific codes associated with each 
identification code; (d) transmitting a communication from the communicating device 
to the host communicating device along with the device identification code and the 
hran.^rtinn specific code associated with the pointer in the sequence of transact i on 
specific codes; (e) disallowing communications transmitted with the device 
identification code that have a transaction specific code that is different from the 
i-r^ng*rt--irm specific code associated with the pointer in the sequence of transaction 
specific codes, wherein the identification codes and the transaction specific codes 
do not comprise an account number, and (f) incrementing the pointers in the 
communicating device and the host communicating device in a common predetermined 
sequence in the absence of an interrogation transmission from the second 
communicating device. 

20. The method of claim 19, wherein the first sequence of transaction codes is 
stored in a database. 

21. The method of claim 19, wherein the first sequence of transact i on codes is 
calculated. 

22. The method of claim 21, wherein the second sequence of transact i on specific 
codes is calculated. 

23. A method of communicating, comprising: (a) providing a first communicating 
device with a first sequence of transaction specific codes; (b) providing a second 
communicating device with a second sequence of transaction specific codes, wherein 
the first and second sequences are identical; (c) setting pointers in the first and 
second sequences at the same transaction specific code; (d) transmitting a 
communication from the first communicating device to the second communicating device 
along with the t-ransarUnn specific code adjacent the pointer in the first sequence 
without transmitting an account number; (e) refusing communications having a 
t-rangarfinn specific code that is different from the transaction specific code 
adjacent the pointer in the second communicating device; and (f) incrementing the 
pointers in a predetermined sequence within both the first and second sequences to 
the next j--r*n.g*rt--irm specific code in the absence of an interrogation transmission 
from the second communicating device. 

24. The method of claim 23, wherein the predetermined sequence for incrementing the 
pointer is the same order as the first and second sequences of transaction specific 
codes . 

25. The method of claim 23, wherein the communication is a credit card transaction , 
and wherein the communication does not include an account number for the credit 
card. 

31. The method of claim 23, further comprising the step of: after refusing a 
communication, resetting the pointer in the host database upon receiving a series of 
attempted communications having a' series of transaction specific codes that match a 
portion of the database. 
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32. The method of claim 23, wherein the pointer in both databases is directed to the 
same field containing the same transaction specific code prior to the first 
communication. 

34. The method of claim 23, further comprising the step of resetting the pointer in 
the host communicating device upon receiving a series of attempted communications 
having i--rang*rt--i on specific codes that match a portion of the database. 

35. A method of communicating, comprising: (a) providing a first communicating 
device with a first sequence of r-rangarH on specific codes; (b) providing a second 
communicating device with a second sequence of transaction specific codes, wherein 
the first and second sequences are identical; (c) setting pointers in the first and 
second sequences at the same i-ransarfinn specific code; (d) transmitting a 
communication from the first communicating device to the second communicating device 
along with the t-T-anfiart-.-irm specific code adjacent the pointer in the first sequence 
and without transmitting an account number; (e) refusing communications having a 
fransarhinn specific code that is not identical to a transaction specific code in 
the second communicating device within a predetermined range of fields in the 
sequence subsequent to the pointer in the second communicating device; and (f) 
incrementing the pointers in a predetermined sequence within both the first and 
second sequences to the next transaction specific code in the absence of an 
interrogation transmission from the second communicating device. 

36. The method of claim 35, further comprising the step of resetting the pointer in 
the second communicating device to the field having a transaction specific code 
identical to the received transaction specific code if the field is within the 
predetermined range of fields subsequent to the pointer. 
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